v4.2.2

4.2.2 (2025-10-21)

Bug Fixes

• resolve shell injection vulnerabilities in GitHub Actions (ffc8433)

v4.2.1

4.2.1 (2025-10-21)

Bug Fixes

• prevent shell injection in GitHub Actions workflows - SEC-4316 (7a0271c)

v4.2.0

4.2.0 (2025-10-17)

Features

• adding iac scan (61f7845)

Bug Fixes

• checkout ver (f251a8a)
• consolidating (43ad63d)
• linting (c77ab96)

Miscellaneous

• readme (ba8abff)
• deps: update pre-commit hook rhysd/actionlint to v1.7.8 (f7c0644)

v4.1.0

4.1.0 (2025-10-09)

Features

• static-analysis: add checkout ref for PR context (f32dc6c)

v4.0.6

4.0.6 (2025-10-07)

Bug Fixes

• fixing new findings: fixing additional findings (e6cf3e5)

Miscellaneous

• deps: update actions/checkout action to v5 (22ceb43)
• deps: update node.js to v22.20.0 (3bbbcaa)

v4.0.5

4.0.5 (2025-10-06)

Bug Fixes

• fixing semgrep finding: fixing semgrep finding (fbb0938)

v4.0.4

4.0.4 (2025-10-06)

Bug Fixes

• using heredoc to pass script as single block (4c09e73)

v4.0.3

4.0.3 (2025-10-06)

Bug Fixes

• semgrep comment mode check: checking semgrep comment mode (3416ffa)
• shell injection: shell Injection (6cdf018)

Miscellaneous

• deps: update pre-commit hook alessandrojcm/commitlint-pre-commit-hook to v9.23.0 (6bc84c2)

Tests

• testing another file: testing shell comments (8c041ca)

Code Refactoring

• removing test files: removing shell injection files (e4252bd)

v4.0.2

4.0.2 (2025-10-01)

v4.0.1

4.0.1 (2025-10-01)

Bug Fixes

• shell injection: fixing shell injection (448b7ee)

Miscellaneous

• deps: update actions/checkout action to v5 (83da3be)
• deps: update dependency open-turo/renovate-config to v1.16.0 (8bb96e9)
• deps: update node.js to v22.19.0 (f777661)
• deps: update open-turo/actions-security action to v4 (a28b109)
• deps: update pre-commit hook pre-commit/pre-commit-hooks to v6 (7223080)

Continuous Integration

• add configurable scan modes to semgrep static analysis (b0d9d55)

Code Refactoring

• updated scan-mode options (22ab158)